CVE-2016-3674 vulnerability in Canonical and Other Products
Published on May 17, 2016

Multiple XML external entity (XXE) vulnerabilities in the (1) Dom4JDriver, (2) DomDriver, (3) JDomDriver, (4) JDom2Driver, (5) SjsxpDriver, (6) StandardStaxDriver, and (7) WstxDriver drivers in XStream before 1.4.9 allow remote attackers to read arbitrary files via a crafted XML document.

Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory NVD

Products Associated with CVE-2016-3674

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2016-3674 are published in these products:

Canonical Ubuntu Linux

Red Hat Jboss Middleware

Fedora Project Fedora

Debian Linux

Xstream

Exploit Probability

EPSS

2.86%

Percentile

86.03%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2016-3674 vulnerability in Canonical and Other ProductsPublished on May 17, 2016

Products Associated with CVE-2016-3674

Exploit Probability

CVE-2016-3674 vulnerability in Canonical and Other Products
Published on May 17, 2016